Revoke Token

post

https://api.vcita.biz/platform/v1/tokens/revoke

Overview

Revoke a specific access token by providing the token value. The token must be accessible by the authenticated caller (e.g., a Directory token can only revoke tokens it issued).

Available for Staff, Application, and Directory tokens.

Authorization Rules

Staff tokens: Can revoke tokens associated with the authenticated user.
Directory tokens: Can revoke tokens they issued to users or apps within their directory.
Application tokens: Can revoke tokens they issued to users within their directory.

Error Handling

Returns 422 with "error": "Unauthorized" if the caller does not have permission to revoke the specified token.
Returns 422 with "error": "invalid token" if the provided token value does not exist.

Language

Credentials

Bearer

JWT

Click Try It! to start a request and see the response here!